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ABSTRACT 



ITie present invention is a portable client PDA with a touch 
sCTeen or other equivalent user interface and having a 
microphone and local central processing unit (CPU) for 
processing voice commands and for processing biometric 
data to provide user verification. The PDA also includes a 
memory for storing financial and personal information of the 
user and I/O capabihty for reading and writing information 
to various cards such as smartcards, magnetic cards, optical 
cards or EAROM cards. The PDA includes a Universal 
Card, which is common generic smartcard with a unique 
imprint provided by a service provider, on which selected 
financial or personal information stored in the PDA can be 
downloaded to perform certain consumer transactions. The 
PDA includes a modem, a serial port and/or a parallel port 
so as to provide direct communication capability with 
peripheral devices (such as POS and ATM terminals) and is 
capable of transmitting or receiving information through 
wireless communications such as radio frequency (RF) and 
infrared (IR) communication. The present invention is pref- 
erably operated in two modes, i.e., a client/server mode and 
a local mode. The client/server mode is periodically per- 
formed to download a temporary digital certificate (which is 
necessary to access selected information stored in the PDA 
and to write such information to the Universal Card) from a 
central server of the service provider of the PDA and 
Universal Card. Next, the local mode of operation is per- 
formed by providing the PDA with biometric data and 
selecting one of the pre-enrolled credit cards that arc stored 
in the PDA. Upon biometric verification, the Universal Card 
is written with the selected card information, which is then 
used to initiate a consumer transaction. In the absence of an 
unexpired digital certificate, however, the selected card 
information will not be written to the Universal Card, 
notwithstanding that the user may have passed local bio- 
metric verification. 

20 Claims, 5 Drawing Sheets 
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PORTABLE INFORMATION AND 
TRANSACTION PROCESSING SYSTEM AND 
METHOD UTILIZING BIOMETRIC 
AUTHORIZATION AND DIGITAL 
CERTIFICATE SECURITY 

This application is based on a provisional application 
Ser No. 60/055,418, filed on Aug. 11, 1997. 

BACKGROUND OF THE INVENTION 

The present invention relates to a portable information 
and transaction processing system and method and, more 
particularly, to a portable information and transaction pro- 
cessing system and method which utilizes digital certificate 
security and biometric authorization to provide personal 
verification prior to processing user requested financial 
transactions and providing personal information. 

It is now widely accepted in the domestic consumer 
market that purchasing or selling goods or services with 
credit cards at point of sale (PCS) terminals, as well as 
performing electronic transfer of funds at automated teller 
machine (ATM) terminals using ATM cards, is more efi5cient 
than using cash to pay for goods or services or paying debts. 
Utilizing cash as a means for purchasing goods or paying 
debts is generally viewed as burdensome for several reasons. 
First, in terms of accounting, the consumer must manually 
generate records and reconcile his or her accounts to keep 
track of such cash transactions. By utilizing a credit card 
issued by a financial institution, however, consumer trans- 
actions are recorded by such financial institution and 
accountings are provided to the consumer on a monthly 
basis, which provides improved accounting and reconcilia- 
tion. 

In addition, using cash is a financially insecure method for 
protecting consumers against fraud and theft. For example, 
if a consumer beHeves that he or she has been sold an 
inferior or over-priced product, which frequently occurs 
during quick consumer transactions where the consumer 
may not have adequate time to reflect on the purchase until 
some time after such purchase, it is much easier for the 
consumer to contact the financial institution to stop payment 
on goods purchased using a credit card than it is for the user 
to recover cash from the merchant from whom such goods 
were bought. Moreover, it is virtually impossible for a 
consumer to recover cash that has been stolen or lost. On the 
other hand, if the consumer's credit cards are stolen or lost, 
the consumer can contact the corresponding financial insti- 
tution to cancel such cards and obtain new credit card 
accounts. 

Accordingly, there is a strong trend today in moving 
towards a "cashless society," which has caused a substantial 
increase in the use of credit cards, ATM cards and direct 
debit cards (collectively, "financial cards") for performing 
consumer transactions. Notwithstanding the perceived ben- 
efits of using financial cards rather than cash, there exists 
several disadvantages in using these cards. For example, if 
the consumer frequently uses a significant number of finan- 
cial cards, the consumer must physically possess all such 
cards in order to access a desired account. Having to carry 
such a large number of financial cards can be extremely 
burdensome to the consumer since a substantial amount of 
space is occupied by these cards in the consumer's wallet or 
purse. Moreover, if the wallet or purse is lost or stolen, the 
consumer must contact the financial institution for each 
financial card to cancel the account so as to prevent an 
unauthorized user from transacting business with such cards, 
which is also a burdensome task. 
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Another disadvantage in using financial cards is that 
consumers are not fully protected from the unauthorized use 
of lost or stolen cards. For example, a merchant can confirm 
the ownership of a credit card during a consumer transaction 

5 by comparing the authorized signature that is (or should be) 
written on the back of the credit card with the signature of 
the person signing the credit card receipt. Realistically, 
merchants generally do not compare these signatures during 
such a transaction, and even if they do, they may not 

10 compare such signatures with the level of scrutiny or skill 
needed to distinguish minor differences between the con- 
sumer's signature and the unauthorized user's forged sig- 
nature. Therefore, during the period of time between the 
time the consumer's credit card is lost or stolen and the time 

15 the consumer realizes such loss or theft and cancels the 
account, an unauthorized user who has found or stolen the 
card may charge a substantial amount of money to the 
consumer's card, leaving the consumer with the burden of 
having to dispute such unauthorized charges with the finan- 

20 cial institution. 

SUMMARY OF THE INVENTION 

It is therefore an object of the present invention to provide 
a portable information and transaction processing device 

^5 ("personal digital assistant" or "PDA") in which a user can 
store his or her credit card, ATM card and/or debit card (i.e., 
financial) information, as well as personal information, and 
then access and write selected information to a smartcard 
("Universal Card"), which is then used to initiate a POS, 
ATM, or consumer transaction. 

It is another object of the present invention to provide a 
PDA device which utilizes biometric security to provide user 
verification prior to accessing and writing the selected 
financial and personal information to the Universal Card. 

It is yet another object of the present invention to provide 
a PDA device with digital certificate security, whereby the 
user is required to periodically download a temporary digital 
certificate from a central server of the service provider of 
such Universal Card into the PDA device prior to accessing 
and writing the selected financial and personal information 
to the Universal Card. 

It is still another object of the present invention to provide 
a PDA device with digital certificate security which is 

45 compatible with the current infrastructure (i.e., immediately 
employed without having to change the existing 
infrastructure) and which brings biometric security to elec- 
tronic data transfer systems that are currently unable to 
perform biometric verification. 

50 It is yet another object of the present invention to provide 
a PDA device with digital certificate security which can be 
extended to all applications or systems wherein magnetic 
and/or smartcards are used such as access conU"ol cards for 
accessing a device service or building, cash cards for per- 

55 forming ATM transactions, calling cards or cellular cards 
(for e.g., GSM (Group Special Mobile) digital cellular 
mobile radio system) for making telephone calls and 
employee cards for accessing confidential information. 
In one aspect of the present invention, a portable infor- 

60 mation and transaction processing device, comprises: central 
processing unit for controlling the functioning and for 
processing a plurality of operations of the device; memory 
means, operatively coupled to the central processing unit, 
for storing financial and personal information and for storing 

65 a temporary digital certificate; communication means, 
operatively coupled to the central processing unit, for estab- 
lishing a communication link with a central server at a 
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remote location to obtain the temporary digital certificate; The present invention advantageously eliminates the bur- 
user interface means, ope rati vely coupled to the central den of having to carry a multitude of financial cards and/or 
processing means, for initiating at least one of the plurality credit cards that a user may frequently utihze. The financial 
of operations of the device and selecting a portion of one of information for each card may be stored in the PDA and 
the financial and personal information from the memory 5 written to the Universal Card when needed. If the Universal 
means; a universal card, detachably coupled to the central Card is lost or stolen, the user will only have to contact the 
processing unit, for receiving the selected portion of one of ^^rvice provider to cancel and reissue a new account. In 
the financial and personal information; and programming addition, due to the biometric and digital certificate security 
means, operatively coupled to the central processing umt ^^ich protects against the unauthorized access to the user's 
and responsive to the temporary digital certificate, for wnl- financial and personal information, a lost or stolen Universal 
ing the selected portion of one of the stored financial and ^ard is useless to an unauthorized user, 
personal information to the universal storage card, whereby t- *t_ • . . , 
the programming means is prevented from writing the ^'J"''"' '!"? ^'^T ""^y immediately 
selected portion of one of the financial and personal infor- ^'^P^^V^ «"'hout the need for changes in the existing 
mation to the universal card when the temporary digital •"f^stn.cture since the PDA and Umversal Card may be 
certificate is invalid r ^ o- is utUized with any system which utilizes magnetic cards or 
. ' . . .L, .• r.^A -.L smartcards for electronic data transfer such as point of sale 
The present mvention is a portable cbent PDA with a (pog^ „^ automated teller machines (AITVl) which 
touch screen or other equivalen user mterface, which .^^ ^j^^^j ^^^^^ capability, 
includes a microphone and a local central processing unit 

(CPU) for processing voice activated commands and for 20 ^^^^""'^^ ^""^ advantages of the 

processing biometric data to provide biometric verification presem invention will become apparent from the following 

of a user. Hie present invention includes a memory for detailed description of illustrative embodiments, which is to 

storing financial and personal information of the user and '^^^ connection with the accompanying drawings, 

I/O capability for writing and reading information to and BRIEF DESCRIPTION OF THE DRAWINGS 

from various cards such as smartcards, magnetic cards, 25 

optical cards or EAROM (electrically alterable read-only FIG. 1 is a block diagram illustrating elements of a 

memory) cards. The present invention includes a Universal portable information and transaction processing device 

Card, which is a common generic smartcard with a unique according to an embodiment of the present invention; 

imprint (i.e., an account number) provided by a service piGS. 2a and 2b are diagrams of the Universal Card 

provider, on which selected financial or personal informa- 30 according to an embodiment of the present invention; 

tion stored in the PDA can be downloaded to perform 3 ^ ^lock diagram showing the interaction of the 

various transactions Tlie PDA preferably mcludes a modem ^^^^j^ information and transaction processing device in 

andaseriflportand/oraparaUelportsoastoprovidedu^^^ connection with processing a transaction according to the 

communication capabihty with peripheral devices. The PDA present invention' 

is also capable of transmitting or receiving information 35 . . .,1 • 1.1./ 

through wireless communications such as radio frequency ^j^'/ ^ ^'^^''^ lUustrating the chent/server 

(RF) and infrared (IR) communication. "'^^^ operation m accordance with the present invention; 

The present invention is preferably operated in two 5 is a flow diagram illustrating the local mode of 
modes, i.e., a client/server mode and a local mode. The operation in accordance with the present mvention; and 
client/server mode is periodically performed to download a 40 FIG. 6 is a flow diagram illustrating another local mode 
temporary digital certificate from a central server of the of operation in accordance with the present invention, 
service provider of the PDA and Universal Card. The OFSPRTPTION OF PRFFFRRFH 
client/server mode is performed by establishing communi- DETAILED DESCRIP^^ PREFERRED 
cation between the PDA and a central server of the service bMBODIMEN lb 
provider via modem or wireless communication. Once com- 45 It is to be understood that same or similar components 
munication is established, the central server verifies the user illustrated throughout the figures are designated with the 
either biometrically or through PIN or password or a com- same reference numeral. It is to be further understood that 
bination thereof, and then generates a temporary digital the elements or functional modules described herein in 
certificate which is downloaded into the PDA. A temporary, accordance with the present invention may be implemented 
unexpired digital certificate is necessary to access selected 50 in various forms of hardware, software, or a combination 
information stored in the PDA and write such information to thereof. Preferably, the main biometric verification elements 
the Universal Card. and speech recognition elements are implemented in soft- 
Next, the local mode of operation of the PDA is per- ware and may include any suitable and preferred processor 
formed to initiate a consumer transaction. Preferably, in the architecture for practicing the invention by programming 
local mode, the user selects one of the pre-enrolled credit 55 one or more general purpose processors. It is to be further 
cards that are stored on the PDA by stating a verbal understood that, because some of the components of the 
command into the microphone of the PDA, whereby the invention described wherein are preferably implemented as 
CPU processes the verbal command and performs user software modules, the actual connections shown in the 
verification. Alternatively, user verification (i,e, local figures may differ depending upon the manner in which the 
verification) may be performed by using either biometric 60 invention is programmed. Of course, special purpose pro- 
data, PIN or password, or a combination thereof. Upon local cessors may be employed to implement the invention. Given 
verification, the selected information is retrieved from theteachingsof the invention herein, one of ordinary skill in 
memory and written to the Universal Card which is then the related art wiU be able to contemplate these and similar 
available to commence a transaction. In the absence of an implementations of the elements of the invention, 
unexpired digital certificate, however, the selected informa- 65 Referring initially to FIG. 1, a block diagram illustrating 
tion will not be written to the Universal Card nolwithstand- elements of the portable information and transaction pro- 
ing that the user may have passed local verification. cessing (PDA) device 10 according to an embodiment of the 
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present invention is shown. The heart of the device is a The PDA device 10 may preferably be equipped with 
central processing unit (CPU) 12, which controls the opera- various communication ports such as a serial port 42 and a 
tionsof the PDA device 10 via programs stored in a memory parallel port 44 (utilizing known computer interface 
14 and executed by the CPU 12. Specifically, the CPU 12 standards), operatively coupled to the CPU 12, as well as a 
includes an acoustic processor module 16 for processing 5 telephone line interface 46 (using a known interface 
voice commands inputted into the PDA device 10 through a connections), to provide means for establishing a commu- 
microphone 18. The acoustic processor module 16 is also nication link between the PDA device 10 and other periph- 
used for performing local speaker verification. The CPU 12 eral devices such as computers, modems and printers. For 
also includes a digital certificate processor module 20, for establishing wireless communication, the device may pref- 
processing a digital certificate obtained in the client/server erably be equipped with an RF processor module 48, opera- 
mode of operation (to be discussed in detail below), and a tively connected between the CPU 12 and an RF port 50, for 
biometric processor module 22 for processing biometric data processing incoming RF information received by the RF 
in addition to, or alternative to voice data, to provide user port 50, and for generating transmission signals which are 
verification. The CPU 12 further includes an encrypter/ outputted from the RF port 50 using conventional construc- 
decrypter module 24 for encrypting the personal and finan- tions and techniques. The device may also be equipped with 
cial information before being stored in memory 14 and for an IR processor module 52, operatively connected between 
decrypting such information when accessed by the user. the CPU 12 and an IR port 54, for processing incoming 
Although the illustrative embodiment herein shows the CPU optical information and for generating output optical signals 
12 comprising the digital certificate module 20, the using conventional constructions and known techniques, 
encrypter/decrypter module 24, the acoustic processor mod- 20 Preferably, the PDA device 10 includes a DTMF (dual tone 
ule 16 and the biometric processor module 22, it is to be multi-frequency) processor module 56 and a modem 58, 
understood that such modules may also be implemented as operatively coupled between the CPU 12 and the telephone 
special purpose modules each having a processor, associated line interface 46. Communication of financial information 
memory and stored programs for performing such functions. may be accomplished via modem communication and/or 

The PDA device 10 includes a smartcard reader/writer 26 25 DTMF tone communication on a telephone line, using 

(as is known in the art) for reading and writing information known methods. DTMF communication may be used for 

to and from various cards, e.g., magnetic cards, IC cards processing PINs for user verification and authorization, 

and/or EAROM cards (using known standards and Referring now to FIGS. 2a and 2b, diagrams of the 

techniques). During the local mode of operation of the PDA Universal Card 26 according to an embodiment of the 

device 10, a Universal Card 26 of the present invention is 30 present invention are shown. The Universal Card 26 is 

inserted into the smartcard readerAvriter 30 and, upon user essentially a generic smartcard which includes either a 

verification, selected financial or personal infonnation is magnetic band 28 (FIG. 2a) or integrated chip (IC) 29 (FIG. 

written to the Universal Card 26. When not in use, the 2b), or both, for storing the selected information which is 

Universal Card 26 may be stored in a smartcard storage retrieved from the memory 14 and written to the Universal 

compartment 32 of the PDA device 10. 35 Card 26 through the smartcard reader/writer 30 during the 

The PDA device 10 includes a user interface/display 34, local mode of operation of the PDA device 10. The Univer- 

which is preferably a liquid crystal display (LCD) touch sal Card 26 (issued by a service provider) contains a unique 

screen display (or equivalent user interface), for displaying Universal Card number 27 imprinted thereon, which corre- 

and/or inputting data associated with the operations or sponds to the designated user account number provided by 

functions of the PDA device 10. Alternatively, the interface/ 40 the service provider (which is analogous to the account 

display 24 may be comprised of a keyboard and a conven- number provided on a credit card or ATM card), 

tional LCD display. Additionally, the PDA device 10 may As more fully discussed below, the Universal Card num- 

audibly communicate with or request information from the ber 27 may be utilized to provide user verification in 

user through a speaker 26 which is operatively connected to consumer POS transactions utilizing a traditional mechani- 

the CPU 12 via a text-to-speech converter 38. The text-to- 45 cal sweeper instead of a magnetic sweeper which is capable 

speech converter 38 converts signals from the CPU 12 into of magnetically reading the magnetic band 28 of the Uni- 

synthesized speech which is then heard through the speaker versal Card 26. The unique Universal Card number 27 may 

36. The PDA device 10 may be configured to simultaneously also be used for to provide user verification in instances 

display such information along with generating the synthe- where consumer transactions are performed remotely over a 

sized speech. Furthermore, the PDA device 10 may operate 50 telephone. In such instance, as explained below, an autho- 

without a display (or a limited display) and rely on the rization number, which is unique to the current digital 

text-to-speech functions to communicate information to the certificate, wiU be displayed on the PDA device 10 upon user 

user of such device. verification. The authorization number, together with the 

A biometric sensor 40 of any conventional type may also unique Universal Card number 27, may be used to verify the 

be provided for collecting biometric data (other than voice 55 user. 

data which is received by the microphone 18) such as a Referring to FIG. 3, a block diagram illustrating the 
finger, thumb or palm print, a handwriting sample, a retinal interaction of the PDA device 10 in connection with pro- 
vascular pattern, or a combination thereof, to provide bio- cessing a transaction according to the present invention is 
metric verification as an alternative to, or in addition to, shown. The user of the PDA device 10 and Universal Card 
voice biometric verification. This data is then processed by 60 26 (FIGS. 1 and 2) must first perfonm an enrollment procc- 
the biometric processor module 22 to provide user verifica- dure with a service provider. Enrollment involves obtaining 
tion (i.e., biometric security) prior to accessing the financial a Universal Card 26 with a designated account number (i.e., 
and personal information stored in memory 14. It is to be the unique imprint 27 on the Universal Card 26) and 
appreciated by one of ordinary skill in the art that the providing the service provider with the user's credit card or 
biometric verification features of the PDA device may be 65 ATM card information so that such information can be 
replaced or supplemented with a PIN (personal identification verified with the financial institutions 70 that issued such 
number) or password to provide user verification. cards. This information is then stored on a central server 60 
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of the service provider. The user may then subsequently through wireless communications, e.g., via the RF port 50 
download such information into the PDA device 10 by and the RF processor module 48. Further, the PDA device 10 
establishing a communication link (LI) with the central may be connected to the central server via a special ATM (or 
server 60. Alternatively, the credit cards or ATM cards may other such kiosks) which uses intranet and TCP/IP to con- 
be loaded into the PDA device 10 by directly reading 5 nect to the central server 60. It is to be understood that the 
information contained on such cards through the smartcard PDA device 10 may be operatively linked to the kiosk either 
readerAvriler 30 of the PDA device 10. In such a situation, directly (e.g., via serial or parallel ports 42 and 44) or 
the PDA device 10 will compare the user ID of the credit through wireless communication via the RF port 50 or the IR 
cards with the user ID of the PDA device to verify the user port 53. As demonstrated above, it is to be appreciated by 
so as to prevent a user from downloading the information jq one of ordinary skill in the art that the central server 60 of 
from cards owned by another person into the user*s PDA present invention is accessible through any conventional 
device 10. In the event that the PDA device is unable to communication channel. 

verify the owner of a card which is being directly down- Once communication has been established, the user is 
loaded via the smartcard reader/writer 30 (i.e., the card does prompted (either by text on the user interface/display 34 or 
not contain the name of its owner), the user will be required verbally through the text-to-speech converter 38 and speaker 
to enroll the card by providing the service provider with the ^,6) to enter certain verification data (step 102). Such data is 
card information (to obtain verification from the appropriate transmitted to the central server 60 via the communi- 
financial institution) and then connect to the central server ^^^^ LI. Specifically, the central server 60 may ask the 
60 to download the card information. T'^lf^vlTff T'T' ^"^^ h ^^y^°^°"^ly/hosen from 
„ „ 1 . , ■ . . . , t'ls totahty of questions asked and answered during the 
Enrollment also involves providing the service provider 20 enrollment process). Such questions are received by the 
with personal inforaiation such as the user^s social security cPU 12 of the PDA device 10 and either displayed on the 
number, address, maiden name and date of birth, which is user interface display 34 or sent to the text-to-speech con- 
stored on the central server 60, Such information is then vertcr 38, where they are converted to synthesized speech 
used to verify the user during the chent/server mode prior to and audibly transmitted to the user through the speaker 36. 
the issuance of a digital certificate. A personal identification 25 The central server 60 may also prompt the user to enter the 
number PIN and the Universal Card 26 with a unique PIN that was issued to the user during the enrollment 
account number 27 is provided by the service provider. This process. 

information, as well as biometric data such as voice prints If such requested verification data is not provided within 

(models) of the user, are also stored in central server 60 of a predetermined time (step 104), the central server 60 will 

the service provider for user verification during the client/ 3Q automatically disconnect the communication Hnk LI, and a 

server mode to obtain a digital certificate (to be discussed in digital certificate will not be downloaded (step 106), On the 

detail below). The central server 60 is a computer which is other hand, if the user enters the requested verification data 

programmed to perform the functions described herein such in timely manner (step 104), the central server 60 will 

as biometric verification, speech recognition and generating process such data (step 108), The user may provide the 

and downloading a temporary digital certificate, 35 requested verification data by providing answers to the 

Referring to FIGS. 1, 3 and 4, the client/server operating questions by speaking into the microphone 18. The audio 

mode of the present invention is now described. As indicated signals are then received by the CPU 12 and then directed to 

above, the user must periodically connect the PDA device 10 the acoustic processor module 16, wherein the user's 

with the central server 60 of the service provider (Unk LI, answers are processed and transmitted to the central server 

FIG. 3) in order to obtain a valid digital certificate from the 40 60 via the communication link LI. In addition, the user may 

central server 60 prior to initiating a consumer transaction. enter his or her assigned PIN through the user interface 

Specifically, the digital certificate is binary encrypted file display 34. This PIN is then processed by the DTMF 

that must be downloaded into the PDA device 10 before processor module 56 to generate corresponding tone signals 

personal or financial information of the user can be written which are received and processed by the central server 60. 

to the Universal Card 26. The digital certificate contains 45 Preferably, the PIN can be provided by stating, e,g.," My pin 

information relating to (but not limited to) the account number is 3456" into the microphone 18, wherein the audio 

number of the PDA device 10, the date on which the digital signals are processed by the acoustic processing module 16, 

certificate was authenticated and its expiration date, as well and then transmitted to the central server 60 via the estab- 

as any constraints which exist for each enrolled card. The fished communication link LI. 

digital certificate is stored in the memory 14 of the PDA 50 While the user is entering the requested verification data, 

device 10. Prior to the execution of a transaction (i.e., the central server 60 begins processing the verification data 

downloading selected card information from the memory 14 (step 108), Specifically, the central server 60 will perform 

to the Universal Card 26), the digital certificate is decrypted speaker verification to compare the user voice models that 

by the encrypter/decrypter module 24 and loaded into the were processed and compiled by the CPU 12 of the PDA 

digital certificate processor module 20 wherein it is pro- 55 device 10 with the user's voice prints that were stored in the 

cessed to determine if it is valid. central server 60 during the enrollment process. Further, the 

In order to obtain the digital certificate, the user must central server 60 compares the answers given by the user 

establish a communication link (Link LI, FIG. 3) with the with the answers provided during the enrollment process to 

central server 60 of the service provider (step 100, FIG. 4). determine if they match. ITie central server 60 may also 

Communication may be established by dialing into the 60 verify whether the PIN entered by the user corresponds to 

central server 60 through a telephone line via the modem 58 the PIN that was issued during the enrollment process. If, 

and telephone fine interface 46. It is also contemplated by after processing the verification data, the central server 60 

the present invention that communication may be estab- determines that the user is not an authorized user (step 110), 

lished with the central server 60 through a digital commu- the communication link LI will be disconnected and no 

nication channel such as internet, intranet or local area 65 digital certificate will be downloaded (step 106). 

network. Alternatively, communication between the PDA It is to be appreciated that any conventional speech/ 

device 10 and the central server 60 may be established speaker recognition system may be employed by the present 



05/13/2004, EAST Version: 1.4.1 



6,016,476 

9 10 

invention. The present invention is not, in any way, limited specific financial card information to be used, the limit on 
to use with or dependent on any details or methodologies of the amount of allowed spending allowed over the lifetime of 
any particular speech/speaker recognition system which the temporary digital certificate and/or the period of time in 
may be employed. Preferably, the speaker recognition sys- which the temporary digital certificate will remain valid 
lem utilized by the central server 60 and the PDA device 10 5 (step 112). This information is received and processed by the 
in accordance with the present invention is the system which central server 60 and a digital certificate is then created and 
performs text-independent speaker verification and asks encoded with the user requested limitations (step 114). This 
random questions, i.e., a combination of speech recognition, digital certificate is then encrypted by the central server 60 
text independent speaker recognition and natural language and downloaded into the digital certificate processing mod- 
understanding using acoustic and non-acoustic models to ule 20 of the CPU 12 via the established communication link 
provide security from unauthorized access to a service/ LI (step 116). It is to be understood that the present 
facility (i.e., the central server 60) such as disclosed in U.S. invention may employ any known encryption technique or 
Ser. No. 08/871,784, filed on Jun. 11, 1997, and entitled: algorithm for the encryption/decryption process, such as 
"Apparatus And Methods For Speaker Verification/ ^^ose disclosed in "Applied Cryptography," by Bruce 
Identification/Classification Employing Non-Acoustic And/ . _ Schenier, second edition, Wiley, 1996. The digital certificate 
Or Acoustic Models and Databases," which is commonly ^ ^^^f° ^Jored m the memory 14 of the PDAdevice 10. With 
assigned to the assignee of the present invention and the ^ digital certificate the user can then perform the local 
disclosure of which is incorporated herein by reference, oPf^^ti°g mode of the PDAdevice 10. 
More particularly, the text-independent speaker verification appreciated that as demonstrated above, the 
system is preferably based on a frame-by frame feature Pre^ent invenUon may utdize PIN or password prote^^^^^ 
classification as disclosed in detail in U.S. Ser. No, 08/788, '° ttT.V^' A'^^^ "'^l^'^'T^ 

471 filed on Jan. 28, 1997 and entitled: "Text Independent ^^^J^^'J^ t^lLlTfT u ^'T' . 

e 1 r» c rj. J A i_- V Moreover, the methods disclosed in the above-referenced 

Speaker Recognmon for Transparent Command^ U.S, Ser. No, 08/873,079 may be utilized in the present 

Resolution And Contmuous Access Control, which is com- invention to remotely authenticate, reset or revoke the user's 

monly assigned to the present assignee and the disclosure of ^5 password, logons, PIN and/or encryption/decryption keys, 

which is also incorporated herein by reference. whereby the user may establish communication with the 

As explained in the above-incorporated reference U.S. central server 60 (via the PDA device 10) to request, e.g., a 

Ser No. 08/871,784, text-independent speaker recognition is PIN change. 

preferred over text-dependant or text-prompted speaker rec- Referring now to FIGS. 1, 3 and 5, the local operating 

ognition because text independence allows the speaker rec- 3Q mode of the present invention is now described. The local 

ognition function to be carried out in parallel with other mode of operation is commenced by the user selecting a 

speech recognition-based ftinclions in a manner transparent pre-enrolled credit card that is stored in memory 14 (step 

to the caller. It is to be understood, however, the present 200). The selection process is preferably performed by voice 

invention can employ text-dependant or text-prompted activated commands (e.g., by stating into the microphone 18 

speaker verification. 35 "I want to use my American Express Card"). Such voice 

It is to be further appreciated that the automatic speech/ commands are then received by the CPU 12 and processed 

speaker recognition system disclosed in U.S. Ser. No. in the acoustic processor module 16. It is to be appreciated 

08/873,079, filed on Jun. 11, 1997, entitled "Portable Acous- that any known command and control engine for speech 

tic Interface For Remote Access to Automatic Speech/ recognition may be employed in the present invention such 

Speaker Recognition Server," which is commonly assigned 40 as the commercially available large vocabulary IBM VIA- 

to the present assignee and the disclosure of which is VOICE GOLD system to perform the speech recognition 

incorporated herein, may preferably be employed in the functions in accordance with the present invention, 

present invention to provide for accurate speech recognition Alternatively, the desired card may be selected through 

communication in remote transactions between the PDA the user interface/display 34. The CPU 12 then searches the 

device 10 and the central server 60. 45 memory 14 for the desired information (step 202). If the card 

Particularly, as explained in above U.S. Ser. No. 08/873, was not previously stored in the PDA device 10 during the 

079, there are certain problems associated with remote enrollment process, the user will be prompted to select 

communications between a server/client systems utilizing another card (step 204). 

automatic speech/speaker recognition. Such problems If the requested card information is found in memory, 

include the loss of accuracy of data due to degradation of 50 biometric verification must be performed before the card 

voice data which is transmitted over a communication information can be written to the Universal Card 26. 

channel and the varied background noises at the user end Alternatively, as stated above, PIN or password verification 

which reduces the accuracy in speech recognition. Such by be performed in lieu of, or in addition to, biometric 

problems are remedied by preprocessing the speech signals verification. In the preferred embodiment of the present 

that are transmitted over the communication channel to the 55 invention using voice activated commands to select the 

server. Such pre-processing includes characterizing the desired card, the microphone 18 functions as a biometric 

acoustic features of the transmitting device, the sensor for receiving biometric voice data. This biometric 

environment, the speaker and the communication channel, voice data is then sent to the acoustic processor module 16 

whereby such information is then processed by the central wherein such data is processed (step 206) by comparing the 

server to set references, select appropriate decode models eo current biometric voice data with the user's voice models 

and algorithms to recognize the speaker or decode the stored in memory 14. Although such verification may be 

speech by modeUng the channel transfer function and the performed by any conventional method, the speaker verifi- 

background noise to reduce the word error rate of the speech cation methods disclosed in the above -referenced 

or to accurately perform speaker recognition. applications, U.S. Ser. Nos. 08/871,784 and 08/788,471 are 

Referring back to FIG. 4, if, on the other hand, the user is 65 preferably employed in the present invention, 
verified (step HO), the central server 60 will then prompt the In another embodiment of the present invention, a bio- 
user to provide certain transaction limitations such as the metric sensor 40 of any known type may be used in lieu of. 
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or in conjunction with the microphone, to collect biometric 
data to be processed by the biometric processor module 22 
using known techniques, e.g., finger, thumb or palm print 
data, handwriting data, a retinal vascular pattern data or a 
combination thereof. Again, in a further embodiment of the s 
present invention, PIN or password verification may be 
utilized in lieu of, or in addition to such biometric verifica- 
tion techniques. 

After the biometric data is processed by the acoustic 
processing module 16 (when voice verification is utilized) or 
the biometric processor module 22 (when other biometric 
verification methods are used), or both, a determination is 
made as to whether the user is an authorized user (step 208). 
If the user is not verified, the selected card information will 
not be written to the Universal Card 26 (step 210). If the user 15 
is verified, the digital certificate (previously obtained in the 
client/server mode) is retrieved from memory 14 and loaded 
into the digital certificate processor module 20. The digital 
certificate processor module 20 processes the digital certifi- 
cate to determine whether the digital certificate is still valid 20 
(i.e., unexpired) and whether the use of the selected card has 
been prohibited or limited by the user requested limitations 
of such card during the client/server mode (step 212). If the 
digital certificate is not valid (i.e., expired), the selected card 
information will not be written to the Universal Card 26 25 
(step 210). 

If the digital certificate is valid (i.e., unexpired) the 
requested card information is then retrieved from memory 
14 and stored in the encrypter/decrypter module 24. The 
selected card information is then decrypted by the '^^ 
encryption/decryption module 24 using an encryption key 
unique to the PDA device 10 (step 214). The decrypted card 
information is then sent to the smartcard reader/writer 30 
where it is then written to the Universal Card 26 (step 216). 
The Universal Card 26 is then removed from the smartcard 
readerAvriter 30 and swept through the magnetic reading 
device of the transaction terminal 80 (FIG. 3) (step 218). The 
consumer transaction information is then sent to the proper 
financial institution 70 via communication link L4 (step 
220). 

In a more advanced transaction terminal 80, the Universal 
Card 26 may be overwritten with a receipt of the transaction 
by the POS or ATM transaction terminal 80 (step 222). With 
this feature, the user can keep an accounting of his or her 
transactions by inserting the Universal Card 26 into the 
smartcard reader/writer 30 and then loading the receipt 
information into the memory 14 of the PDA device 10 (step 
224). The user can subsequently transfer such information to 
a personal computer containing accounting software such as 
the software sold under the tradename QUICKEN. 

Advantageously, the present invention is immediately 
employable with the current infrastructure since the Univer- 
sal Card 26 is compatible with all credit card and/or smart- 
card electronic fund transfer systems (e.g., systems that 55 
process ATM cards, debit cards, credit cards, access control 
cards, calling cards and/or service cards). 

It is to be appreciated that the present invention may be 
used to store and access personal information such as 
medical, financial information and other confidential infor- 60 
mation which may be accessed and written to the Universal 
Card 26 or displayed on the user interface/display 34 
(assuming a valid digital certificate and local user 
verification). For example, medical doctors with special 
smartcards can access certain medical information from the 65 
PDA device of a patient (upon patient verification) by 
writing such information to the smartcard via the smartcard 
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reader/writer of the PDA device 10. Alternatively, such 
information may be transferred by wireless communication 
between the PDA device of the patient and the PDA device 
of the doctor. 

It is to be further appreciated that the invention may 
interact with electronic fund transfer systems or transaction 
terminals having wireless or direct communication capabili- 
ties without even having to use the Universal Card 26. 
Specifically, as demonstrated by the dotted lines in FIG. 5, 
the consumer transaction may be performed by transmitting 
the selected card information directly from the PDA device 
to the ATM or POS transaction terminal through an estab- 
lished communication link L2 (step 228, FIG. 3) (i.e., via the 
serial port 42, the parallel port 44 modem 42, the IR port 54 
or the RF port 50), rather than retrieving and writing card 
information to the Universal Card 26. Further, a receipt of 
the transaction can be directly transmitted to the PDA device 
10 through the communication link 12 (step 230). It is to be 
understood that in this embodiment, the CPU 12 of the PDA 
device 10 will prohibit the selected card information from 
being retrieved and transmitted to the transaction terminal 
80 if the user is not biometrically verified and/or if the digital 
certificate is not valid (step 226). In this particular embodi- 
ment of the present invention, the PDA device 10 itself 
actually takes the place of the Universal Card 26 and, 
consequently, eliminates the need of having to first write the 
selected card information to the Universal Card 26 and then 
sweep the Universal Card 26 through the magnetic reader of 
the POS or ATM transaction terminal. 

Advantageously, the present invention provides biometric 
security for transactions that do not involve electronic data 
transfer such as transactions that are processed with tradi- 
tional mechanical credit card sweepers or transactions that 
are performed remotely over the telephone. In such 
situations, a merchant can confirm that the user passed local 
verification by using the unique Universal Card number 27 
(FIG. 2) together with an authorization number which is 
based on the current valid digital certificate and generated 
upon user verification. 

By way of example, referring to FIG. 6, a flow diagram 
illustrating the local mode of the PDA device 10 during a 
remote (or mechanical sweeper) consumer transaction is 
shown. When operating the PDA device 10 in the local 
mode, if the user is biometrically verified (step 308) and the 
PDA device 10 contains an unexpired digital certificate (step 
310), the selected card information is retrieved from 
memory 14 and decrypted (step 314). The desired credit card 
information, as well as an authorization number, is then 
displayed on the user interface/display 34 (step 316). This 
information can then be verbally communicated to the 
merchant in order to process the transaction. If the user is not 
biometrically verified, or if the PDA device 10 contains an 
expired digital certificate, the selected card information and 
authorization number will not be displayed, (step 312). 

The merchant can verify that local verification of the user 
has been properly obtained by establishing a communication 
link L3 (FIG. 3) with the central server 60. If the selected 
card information corresponds to a credit card that was 
previously enrolled (i.e., registered) with the service pro- 
vider of the PDAR device 10 and Universal Card 26, upon 
transmitting the selected card information to the financial 
institution (or calling such institution to confirm the validity 
of the credit card), the merchant will be requested to provide 
the authorization number (which is generated upon user 
verification), in addition to the expiration date of the credit 
card, llie merchant will then transmit the Universal Card 
number 27 and the displayed authorization number to the 
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central server 60. Since the authorization number is a The present invention has heretofore been illustrated as a 

functionof the unexpired digital certificate that was obtained separate portable device. It is to be understood by one of 

from the central server 60 in the client/server mode, the ordinary skill in the art that the configuration of the present 

central server 60 inform the merchant that the user was invention may be embedded in other CPU based systems 

properly verified (step 318). 5 such as a ceUular phone, a portable laptop, a network 

It is to be appreciated that local verification may also be computer (NC), or a PC having built in the components of 

performed by signature verification, whereby a digitized the above described PDA device 10. For example, a portable 

image of the user's valid signature is displayed on the user laptop having the smartcard readerAvriter 30 of the PDA 

interface/display 34 using known techniques so that a mer- device 10 may be directly connected to the central server 60 

chant can compare the digitized signature on the screen to through a modem or through an internet server by protocols 

the user's written signature to provide further authentication. such as TCP/IP to download a valid digital certificate 

Further, the present invention may utilize any conventional Moreover, the functions and components of the PDA 

pressure sensitive display wherein the t^r of the PDA device 10 may be built into a cellular phone, whereby 

device 10 may sign his or her signature on the display, which communication with the central server 60 may be achieved 

IS then processed and compared with an authentic digitized ♦u u n 1 • l 1 1 • . 

signaturestoredinthememoryl4ofthePDAdevicelO.An '^7^*^ ^'^^''^/''T;if.?Tc^^^^ "^^'"^ ""'^ 

example of such technique is disclosed, for example, in "^'^'"'^ (^ S ' ^^^ ^^ 

"Automatic On-Une Signature Verification," by Vic Nalwa, " ^ ^« appreciated by one of ordinary skill in the art 

Proc. IEEE, pp. 215-239, February, 1997. that a special ATM, kiosk or POS terminal can be employed 

It is to be further appreciated that' the PDA device 10 and perform the methods and fiinctions of the present inven- 

system of the present invention can be configured to afford 20 tion in lieu of the actual PDA device, thereby eliminating the 

an additional level of security for user verification, whereby "^^^ to physically posses the PDA device 10. For instance, 

the financial institution (e.g., credit card company) can ^ smartcard having a valid digital certificate and the user's 

verify the identity of the consumer during a purchase verification data (e.g, biometric data (voice print), PIN 

transaction. Specifically, during a consumer transaction, and/or password) and card information stored thereon may 

upon local verification (biometric, PIN and/or password) 25 be inserted into the ATM, kiosk or POS terminal, which are 

and assuming, of course, that a valid digital certificate was be equipped with biometric sensors such as a microphone, 

previously downloaded from the central server 60, the PDA The ATM can then verify the user biometrically or via PIN 

device 10 can be programmed to download the selected card or password. Assuming the digital certificate is valid, the 

information in encrypted form to the Universal Card 26, as ATM can then initialize the smartcard which may then be 

well as an encrypted file containing unique identifying 30 used to perform, for example, a purchase transaction. The 

information pertaining to the consumer including, but not smartcard may then be used for the duration of the validity 

limited to, such as the consumer's name and account number of the digital certificate (i.e., until the digital certificate 

(issued by the service provider of the PDA device 10 and expires) or until another card is loaded. In this embodiment. 

Universal Card 26). The selected card information, as well the smartcard can be used for only a limited amount of 

as the encrypted information file, would be transmitted to the 35 transactions. The digital certificate may be downloaded to 

POS terminal (via the Universal Card, RF or IR) and then the smartcard by any method analogous to the PIN mainte- 

transmitted in encrypted form directly to the processing nance techniques disclosed in the above incorporated U.S. 

financial institution together with the purchase details. Ser. No. 08/873,079, "Portable Acoustic Interface For 

Similarly, for purchase transactions with remote services Remote Access to Automatic Speech/Speaker Recognition 

(e.g. via the internet with a merchant's Web site), the 40 Server." For example, the user may establish a communi- 

selected card information in encrypted form, as well as the cation fink with the central server 60 service provider 

encrypted user information, would be transmitted via through a personal computer having a smartcard reader, 

modem (TCP/IP) to the remote service (i.e., Web site) and whereby a valid digital certificate may be download onto the 

then transmitted in encrypted form to the financial institu- smartcard after the user provides verification information 

tion. It is to be appreciated that the encrypted information 45 such as user ID, PIN, smartcard serial number, and/or 

may be transmitted to the merchant's Web site either directly biometric data. 

from the modem 58 of the PDA device 10, or by download- It is to be further appreciated that the PDA device 10 of 

ing such information to the Universal Card 26, which is then the present invention may be used as a personal credit card 

read and transmitted by a PC equipped with a smartcard center whereby funds may be directly transferred between 

reader and a modem. 50 individuals having such PDA devices via credit cards or 

Next, assuming the credit card was previously enrolled debit cards. For example, assume that User A owes User B 

with the service provider, the processing financial institution a certain amount of money. User A will perform local 

would posses the requisite key (provided by the service verification (assuming that user A has a valid digital 

provider upon enrollment) to decode (i.e., decrypt) the certificate) to download selected credit card or debit card 

transmitted infonnation to verify the identity of the user. 55 information to User A's Universal Card. User A will then 

Consequently, the processing financial institution would provide User B with the Universal Card which is then 

provide an authorization number for the transaction to the inserted into the smartcard reader/writer 30 of the PDA 

mcrchantiftheconsumer was verified or, on the other hand, device 10 of User B. User B then selects the amount of 

deny the transaction and inform the merchant if the con- money to be transferred (i.e., debited) from the Universal 

sumer is not authorized to use the selected card. 60 Card (i.e., selected credit card) to any one of User B's 

Alternatively, the PDA device 10 can be programmed to enrolled financial accounts (e.g., credit card accounts). User 

download a copy of the valid temporary digital certificate in B then obtains the authorization number produced by the 

encrypted form (as well as the selected card information in PDA device of User A upon local verification, and enters 

encrypted form) to the Universal Card 26, whereby the such number into the PDA device of User B. Of course, the 

digital certificate containing the requisite information to 65 above procedure may be performed directly (e.g., via IR 

identify the user would be transmitted (with the selected communication) instead of physically exchanging the Uni- 

card information) to the conresponding financial instimtion. versal Card. 
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To prevent fraudulent traosactioos, the authorization num- 
ber produced by the PDA device of User A must be inputted 
into the PDA device of User B after the amount of the 
transaction is entered into the PDA device of User B and 
verified by User A. In other words, the PDA device of User 
B must be configured such that the authorization number 
from User A will not be accepted by the PDA device of User 
B unless the amount of the transaction is first entered into the 
PDA device of User B. Moreover, the PDA device of User 
B must be configured such that the authorization number of 
User A entered into the PDA device of User B is valid for 
only one transaction (i.e., one amount of money entered into 
the PDA device of User B), whereby the entire process must 
be subsequently repeated for each additional transaction 
between User A and User B. Alternatively, to prevent fraud, 
the PDA device of User A may be configured such that the 
authorization number produced by the PDA device of User 
A contains the amount of money to be transferred to the 
account of User B in an encrypted or, otherwise, hidden form 
so that User B cannot access and manipulate such amount. 

After entering User A' s authorization number, User B will 
establish a communication link with the service provider to 
verify that the authorization number corresponds to User A*s 
unique Universal Card number and then have the funds 
transferred to User B's selected account (assuming the 
account is registered with the service provider). 

One of ordinary skill in the art can envision various 
methods for implementing the present invention for com- 
municating the selected card information. For instance, in 
the near future, information may be communicated between 
individuals and systems via personal area network (PAN) 
which Hnks special electronic devices having a transceiver 
and CPU carried on the individuals using human conduc- 
tivity. Such concept may be employed in the present inven- 
tion whereby the selected card information is transferred 
upon human contact (e.g., shaking hands) rather than being 
transferred through a magnetic or smartcard or wireless 
communication. Specifically, the present invention may be 
embedded into the CPU of a PAN device whereby selected 
card information may be transmitted to receiving devices 
such as ATM's and POS terminals which are equipped with 
the requisite software and hardware to support PAN data 
exchange. 

Although the illustrative embodiments of the present 
invention have been described herein with reference to the 
accompanying drawings, it is to be understood that the 
invention is not limited to those precise embodiments, and 
that various other changes and modifications may be 
affected therein by one skilled in the art without departing 
from the scope or spirit of the invention. All such changes 
and modifications are intended to be included within the 
scope of the invention as defined by the appended claims. 

What is claimed is: 

1. A portable information and transaction processing 
device, comprising: 

a central processing unit; 

a memory device, operatively coupled to said central 
processing unit, for storing transaction information 
comprising one of financial information, personal 
information, and a combination thereof; 

communication means for establishing a communication 
link with a central server of a service provider, disposed 
at a remote location, to download a temporary digital 
certificate issued by said service provider; 

a user interface, operatively coupled to said central pro- 
cessing unit, for selecting at least a portion of said 
transaction information; 
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a card reader; 

a universal card having a unique card number designated 
to a subscribing user of said service provider, wherein 
the universal card is inserted into said card reader to 
receive said selected portion of said transaction infor- 
mation; and 

programming means, executable by said central process- 
ing unit, for determining if said temporary digital 
certificate is valid, for writing said selected portion of 
said transaction information to said universal card if 
said temporary digital certificate is deemed valid, and 
for preventing said selected portion of said transaction 
information from being written to said universal card 
when said temporary digital certificate is deemed 
invalid. 

2. The device according to claim 1, further comprising 
verification means for verifying if a user of said device is an 
authorized user and wherein said programming means com- 
prises means for preventing said selected portion of said 
transaction information from being written to said universal 
card if the user of said device is not verified. 

3. The device according to claim 2, wherein said verifi- 
cation means includes one of biometric verification means, 
PIN (personal identification number) verification means, and 
a combination thereof. 

4. The device according to claim 3, wherein said biomet- 
ric verification means includes: biometric sensor means for 
receiving biometric data from a user of said device; and 
biometric processing means for processing said biometric 
data to determine if said user of said device is an authorized 
user. 

5. The device according to claim 4, wherein said biomet- 
ric data is derived from one of a finger, thumb or palm print, 
a voice print, a handwriting sample and a retinal vascular 
patter and a combination thereof. 

6. The device according to claim 4, wherein said biomet- 
ric verification means perfonms speaker verification and said 
biometric data is voice data. 

7. The device according to claim 6, wherein said speaker 
verification is text-independent speaker verification. 

8. The device according to claim 1, further comprising 
encrypting/decrypting means, operatively coupled to said 
central processing unit, for encrypting said transaction infor- 
mation prior to said transaction information being stored in 
said memory device and for decrypting said selected portion 
of said transaction information. 

9. The device according to claim 1, further comprising 
speech recognition means, operatively coupled to said cen- 
tral processing unit, for processing voice commands from an 
authorized user of said device. 

10. The device of claim 1, wherein the temporary digital 
certificate includes one of an expiration date, the unique card 
number of the universal card, transaction hmitation data, and 
a combination thereof. 

11. An information and transaction processing system, 
comprising: 

a central server associated with a service provider of a 

subscribing user; 
a transaction terminal; and 
a portable communication device comprising: 

a central processing unit; 

a memory device, operatively coupled to said central 
processing unit, for storing transaction information 
comprising one of financial information, personal 
information, and a combination thereof; 

communication means for establishing a communica- 
tion hnk with said central server to download a 
temporary digital certificate from said central server; 
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a user interface, operatively coupled to said central 
processing unit, for selecting at least a portion of said 
stored transaction information; 

a card reader; 

a universal card having a unique card number desig- 
nated to the subscribing user by said service 
provider, which is inserted in said card reader to 
receive said selected portion of said transaction 
information; and 
programming means, executable by said central pro- 
cessing unit, for determining if said temporary digi- 
tal certificate is valid, for writing said selected por- 
tion of the transaction information to said universal 
card if said temporary digital certificate is deemed 
valid, and for preventing said selected portion of the 
transaction information from being written to said 
universal card if said temporary digital certificate is 
deemed invalid; 
whereby said universal card is presented to said transac- 
tion terminal for initiating a user-desired transaction if 
said selected transaction information is written to said 
universal card. 

12. The system of claim 11, wherein said central server 
comprises verification means for receiving and processing 
verification data of a user of said portable device, which is 
transmitted from said portable device, to verify if the user of 
said portable device is a subscribing user, whereby said 
digital certificate is transmitted to said portable device only 
if said user is verified. 

13. The system of claim 11, wherein said portable com- 
munication device further comprises verification means for 
verifying if a user of said portable communication device is 
authorized to use said portable communication device, and 
wherein said programming means comprises means for 
preventing said selected transaction information from being 
written to said universal card if the user of said portable 
communication device is not verified. 

14. A method for performing an electronic transaction, 
comprising the steps of: 

using a portable communication device to establish a 
communication link with a central server of a service 
provider; 

verifying, by the central server, the identity of a user of the 
portable communication device to determine if the user 
is a subscribing user of the service provider; 

downloading a temporary digital certificate from the 
central server to the portable communication device, 
the temporary digital certificate being issued by the 
service provider if the user is verified as a subscribing 
user; 

selecting, by the user of said portable communication 
device, desired transaction information stored in the 
device to perform an electronic transaction; 

verifying, by the portable communication device, if the 
user is an authorized user of said device; 

determining, by the portable communication device, if the 
downloaded temporary digital certificate is valid; and 
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providing the selected transaction information to an elec- 
tronic transaction terminal to perform an electronic 
transaction, if the user is deemed an authorized user and 
the temporary digital certificate is deemed valid. 

15. The method of claim 14, wherein the step of providing 
the selected transaction information to an electronic trans- 
action terminal comprises the steps of: 

retrieving said selected transaction information stored in 

said portable device; 
decoding the selected transaction information using a key 

from the temporary digital certificate; 
establishing a transaction communication link with said 

electronic transaction terminal; and 
transmitting said decoded transaction information over 

said transaction communication link to said electronic 

transaction terminal. 

16. The method of claim 14, wherein the step of providing 
the selected transaction information to an electronic trans- 
action terminal comprises the steps of: 

retrieving said selected transaction information stored in 

said portable device; 
decoding the selected transaction information using a key 

from the temporary digital certificate; 
writing the decoded transaction information to a universal 

card in a card reader of the portable device; and 
providing the universal card with the decoded transaction 

information to the electronic transaction terminal. 

17. The method of claim 14, further comprising the steps 

of: 

generating an authorization number associated with the 
temporary digital certificate; and 

verifying the transaction by the transaction terminal, 
wherein the step of verifying the transaction comprises 
the steps of establishing a communication link with the 
central server by the electronic transaction terminal, 
and transmitting the authorization number and an 
account number of said subscribing user to said central 
server. 

18. The method of claim 14, wherein the temporary digital 
certificate includes one of an expiration date, an account 
number of the subscribing user, transaction limitation data, 
and a combination thereof 

19. The method of claim 18, wherein one of the expiration 
date, transaction limitation data, and a combination thereof, 
of the temporary digital certificate is selected by the user of 
said portable communication device, if the user is verified by 
the central server as a subscribing user. 

20. The method of claim 14, wherein the steps of veri- 
fying by the central server and the portable communication 
device are performed using one of biometric verification, 
PIN (personal identification number) verification, and a 
combination thereof. 
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